<!doctype html>


<html>
<head>
  <link rel="shortcut icon" href="static/images/favicon.ico" type="image/x-icon">
  <title>data (Closure Library API Documentation - JavaScript)</title>
  <link rel="stylesheet" href="static/css/base.css">
  <link rel="stylesheet" href="static/css/doc.css">
  <link rel="stylesheet" href="static/css/sidetree.css">
  <link rel="stylesheet" href="static/css/prettify.css">

  <script>
     var _staticFilePath = "static/";
     var _typeTreeName = "goog";
     var _fileTreeName = "Source";
  </script>

  <script src="static/js/doc.js">
  </script>


  <meta charset="utf8">
</head>

<body onload="grokdoc.onLoad();">

<div id="header">
  <div class="g-section g-tpl-50-50 g-split">
    <div class="g-unit g-first">
      <a id="logo" href="index.html">Closure Library API Documentation</a>
    </div>

    <div class="g-unit">
      <div class="g-c">
        <strong>Go to class or file:</strong>
        <input type="text" id="ac">
      </div>
    </div>
  </div>
</div>





<div class="colmask rightmenu">
<div class="colleft">
    <div class="col1">
      <!-- Column 1 start -->

<div id="title">
       <span class="fn">soy.data</span>
</div>

<hr/>


  <h2>Classes</h2>
 <div class="fn-constructor">
        <a href="class_goog_soy_data_SanitizedContent.html">
          goog.soy.data.SanitizedContent</a><br/>
        <div class="class-details">A string-like object that carries a content-type.

IMPORTANT! Do not create these directly, nor instantiate the subclasses.
Instead, use a trusted, centrally reviewed library as endorsed by your team
to generate these objects. Otherwise, you risk accidentally creating
SanitizedContent that is attacker-controlled and gets evaluated unescaped in
templates.</div>
 </div>
   
<br/>

  <div class="legend">
        <span class="key publickey"></span><span>Public</span>
        <span class="key protectedkey"></span><span>Protected</span>
        <span class="key privatekey"></span><span>Private</span>
  </div>



<h2>Enumerations</h2>






<div class="section">
  <table class="horiz-rule">


     <tr class="even entry public">
       <td class="access"></td>





  <a name="goog.soy.data.SanitizedContentKind"></a>

  <td>


     <div class="arg">
        <img align="left" src="static/images/blank.gif">

        <span class="entryNamespace">goog.soy.data.</span><span class="entryName">SanitizedContentKind</span>
        : 
     </div>


     <div class="entryOverview">
       A type of textual content.

This is an enum of type Object so that these values are unforgeable.
     </div>

     <div class="entryDetails">
       <div class="detailsSection">
          <b>Constants:</b>
          <table class="horiz-rule">
            <tbody>
              <tr><td>
                <span class="entryName">
                  CSS
                </span>
                <div class="entryOverview">
                  A CSS3 declaration, property, value or group of semicolon separated
declarations.
                </div>
             </td></tr>
              <tr><td>
                <span class="entryName">
                  JS_STR_CHARS
                </span>
                <div class="entryOverview">
                  A sequence of code units that can appear between quotes (either kind) in a
JS program without causing a parse error, and without causing any side
effects.
<p>
The content should not contain unescaped quotes, newlines, or anything else
that would cause parsing to fail or to cause a JS parser to finish the
string its parsing inside the content.
<p>
The content must also not end inside an escape sequence ; no partial octal
escape sequences or odd number of &amp;#39;<code>\</code>&amp;#39;s at the end.</p></p>
                </div>
             </td></tr>
              <tr><td>
                <span class="entryName">
                  TEXT
                </span>
                <div class="entryOverview">
                  Unsanitized plain-text content.

This is effectively the "null" entry of this enum, and is sometimes used
to explicitly mark content that should never be used unescaped. Since any
string is safe to use as text, being of ContentKind.TEXT makes no
guarantees about its safety in any other context such as HTML.
                </div>
             </td></tr>
              <tr><td>
                <span class="entryName">
                  HTML
                </span>
                <div class="entryOverview">
                  A snippet of HTML that does not start or end inside a tag, comment, entity,
or DOCTYPE; and that does not contain any executable code
(JS, {@code <object>}s, etc.) from a different trust domain.</object>
                </div>
             </td></tr>
              <tr><td>
                <span class="entryName">
                  JS
                </span>
                <div class="entryOverview">
                  Executable Javascript code or expression, safe for insertion in a
script-tag or event handler context, known to be free of any
attacker-controlled scripts. This can either be side-effect-free
Javascript (such as JSON) or Javascript that entirely under Google's
control.
                </div>
             </td></tr>
              <tr><td>
                <span class="entryName">
                  ATTRIBUTES
                </span>
                <div class="entryOverview">
                  Repeated attribute names and values. For example,
<code>dir=&amp;quot;ltr&amp;quot; foo=&amp;quot;bar&amp;quot; onclick=&amp;quot;trustedFunction()&amp;quot; checked</code>.
                </div>
             </td></tr>
              <tr><td>
                <span class="entryName">
                  URI
                </span>
                <div class="entryOverview">
                  A properly encoded portion of a URI.
                </div>
             </td></tr>
           </tbody>
         </table>
       </div>
     </div>

  </td>


  <td class="view-code">
     <a href="closure_goog_soy_data.js.source.html#line36">Code &raquo;</a>
  </td>
     </tr>


  </table>
</div>







      <!-- Column 1 end -->
    </div>

        <div class="col2">
          <!-- Column 2 start -->
          <div class="col2-c">
            <h2 id="ref-head">Package soy</h2>
            <div id="localView"></div>
          </div>

          <div class="col2-c">
            <h2 id="ref-head">Package Reference</h2>
            <div id="sideTypeIndex" rootPath="" current="soy.data"></div>
          </div>
          <!-- Column 2 end -->
        </div>
</div>
</div>

</body>
</html>
